The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.


  • Please make sure you have offline backups

    June 11, 2014, Adam Sarote, Director, Coalfire

    This ransomware has hit not only personal computers, but also organizations, including a town in New Hampshire. This particular attack was carried out when an employee opened a seemingly legitimate email attachment, once again reminding us of the ever-present danger of social engineering. Read more
  • What are Insurers really covering?

    May 27, 2014, Rick Dakin, CEO, Co-founder and Chief Security Strategist

    Across the country, executives and their boards saw the data breaches that occurred at large, well-run retailers and immediately began asking the right questions about their own systems and protections. The challenge for the insurance industry is that the plan for many of these companies seems to be transferring as much risk as possible to insurers, who may not have a full and complete understanding of what they are covering.

    Read more
  • What is Your Risk Assessment Worth?

    December 08, 2011, John Rostern, VP, Technology Advisory and Assessment Services

    A risk assessment provides your organization with a tool to determine how, where and how much to invest in controls and security over technology.  It also serves to document the risk acceptance policy of your organization as the acceptable level of risk dictates the level of controls to be implemented.  It is also a requisite part of legal and regulatory compliance for Sarbanes-Oxley, HIPAA and PCI, among others. 

    Read more
  • Trust the ‘Cloud’ (just make sure you have it examined first)

    April 26, 2011, Tom McAndrew, EVP Commercial Services, Coalfire

    In the wake of Amazon’s Web Service disruption over the past few days we think it is important to look at the case a little closer.

    Read more
  • Compliance and the Cloud

    March 14, 2011, Tom McAndrew, EVP Commercial Services, Coalfire

    “The Cloud” is a hot topic right now. Yet most people can’t even define what “the cloud” really is. As I talk to more companies, who are considering the move, they all have two main concerns: security and compliance. Of course, security and compliance are key when it comes to cloud computing, but the questions you really need to be asking is not, “Will I be secure and compliant if I move to the cloud?” but rather, “What do I need to do to be secure and compliant when I move to the cloud?”

    Read more

Recent Posts

Post Topics

Archives

RSS Feed

The Coalfire BlogSubscribe to Feed
Chrome users will need to install RSS Subscription Extension (by Google)

Tags